Sr. Software Engineer (Security)

Remote - US

Anaconda

Anaconda is the birthplace of Python data science. We are a movement of data scientists, data-driven enterprises, and open source communities.

View company page

Role: Sr. Software Engineer (Security)

Reports to: Director, Security 

Department: Engineering 

Location: Remote- US

Job Type: Full Time, Exempt

 

Be at the center of AI

With more than 40 million users, Anaconda is the world’s most popular data science platform and the foundation of modern AI development. We pioneered the use of Python for data science, championed its vibrant community, and continue to steward open-source projects that make tomorrow’s innovations possible. Our enterprise-grade solutions enable corporate, research, and academic institutions around the world to harness the power of open-source for competitive advantage, groundbreaking research, and a better world.

Anaconda is seeking people who want to be at the center of Artificial Intelligence. Candidates should be knowledgeable and capable, but always eager to learn more and to teach others. 

Here is why people love most about working here: We’re not just a company, we’re part of a movement. Our dedicated employees and user community are democratizing data science and creating and promoting open-source technologies for a better world, and our commercial offerings make it possible for enterprise users to leverage the most innovative output from open source in a secure, governed way.

Summary

Anaconda is seeking a talented Sr. Software Engineer focused on security to research, advise, lead, and build out security solutions to keep our software supply chain secure for our millions of users. You’ll help keep us up to date with the latest security best practices while helping us be influencers and leaders in how to best secure packages. You’ll get to work directly with our engineering teams across Anaconda to implement security solutions and also advise product direction and focus. The role will also be a key influencer to company leadership to ensure we are always moving in the right direction.

What You’ll Do:

  • Secure the software supply chain in the conda ecosystem, starting from upstream open-source packages, to the build process, to the package manager (conda), to installation and environment management.
  • Identify gaps in our security and work with the product teams to implement mitigation.
  • Keep up to speed with security best practices and trends and advise company leadership on approaches to implement
  • Help Anaconda be a leader in securing packages.
  • Work with product teams to implement security features and initiatives.
  • Be available to advise product teams and architects that need feedback on potential security issues.
  • Coordinate with external security groups like OpenSSF, The Update Framework, etc. on software supply chain security efforts and best practices.
  • Be a voice to drive security best practices at the company with presentations, training, etc.

What You Need:

  • Knowledgeable about three or more of the following: Cryptography, package building / packaging life cycle, package security, cryptographic signature schemes, SLSA or similar frameworks for assessing supply chain security, key management / PKI, application security.
  • A history of working with dev teams to deliver working, tested software
  • Experience with the full SDLC including code reviews, testing, and source control best practices.
  • Experience leading larger initiatives. 
  • Willingness to help
  • Desire to learn and teach others around you
  • Experience creating threat models and effectively delivering results to high level stakeholders
  • Demonstrated flexibility, organization and self-motivation
  • Embody our core values:
    • Ability & Humility
    • Innovation & Action
    • Empathy & Connection
  • Care deeply about fostering an environment where people of all backgrounds and experiences can flourish

What Will Make You Stand Out:

  • Worked in packaging, updater, or SBOM securityWorked with the following orgs, initiatives, or projects: SigStore, TUF, Notary Project, OWASP, SLSA, OpenSSF
  • Previous work auditing package managers

Why You’ll Like Working Here:

  • Unique opportunity to translate strong open source adoption and user enthusiasm into commercial product growth
  • Dynamic company that rewards high performers
  • On the cutting edge of enterprise application of data science, machine learning and AI
  • Collaborative team environment that values multiple perspectives and clear thinking
  • Employees-first culture
  • Medical*, Dental*, Vision*, HSA*, Life* and 401K*
  • Flexible working hours
  • Generous Parental leave 
  • Pre-IPO stock options
  • Open vacation policy 
  • 100% remote and flexible working policy – we embrace this fully through how we operate as a company.
  • *FTE employees based on your region

An Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

Anaconda, Inc. (“We”, “Us”) are committed to protecting and respecting your privacy. This Privacy Notice sets out the basis on which the personal data collected from you, or that you provide to Us, will be processed by Us in connection with Our recruitment processes. By clicking “Submit Application”, you acknowledge you have read our Privacy Policy and that Anaconda can retain your application data for up to 1-year, unless otherwise stated.  For the purpose of the General Data Protection Regulation (“GDPR”) ”) and the version of the GDPR retained in UK law (the “UK GDPR”) the Data Controller is Sydney Artt.

Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Application security Artificial Intelligence Audits Cryptography GDPR Machine Learning Open Source OWASP PKI Privacy Python SBOM SDLC

Perks/benefits: Career development Equity Flex hours Flex vacation Health care Medical leave Parental leave Startup environment

Regions: Remote/Anywhere North America
Country: United States
Job stats:  9  1  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.